Maggie Prosser reports: Hundreds of thousands of public health records, including COVID-19 vaccination details, were exposed in a data breach that was linked to an app that is used at Denton County vaccine clinics, officials say. A malfunction in the third-party software revealed contact and identifying information, as well as COVID-19 vaccination types and appointment…
Beaumont Health notifies patients of Accellion breach
Friday, August 27, 2021 On February 5, 2021, Goodwin Procter LLP (“Goodwin”) notified Beaumont Health (“Beaumont”) of a security incident at Accellion, a third-party vendor whose File Transfer software was used by Goodwin for large file transfers on behalf of clients, including Beaumont. Goodwin received some personal and protected health information from Beaumont in connection…
Indonesia probes suspected data breach on COVID-19 app
Reuters reports: Indonesia is investigating a suspected security flaw in a COVID-19 test-and-trace app that left exposed personal information and the health status of 1.3 million people, a health ministry official said on Tuesday. Researchers from encryption provider (sic) vpnMentor said personal information in the Indonesia Health Alert Card (eHAC) app, often required to be used…
Bangkok Air confirms passenger PII leak after ransomware attack
Catalin Cimpanu reports: Bangkok Airways, the second oldest and the third biggest airline company in Thailand, has admitted last week that hackers stole passenger information during a security breach following a ransomware attack. The airline confirmed the breach in a press release last Thursday, a day after a ransomware gang known as LockBit posted a message…
Hackers Steal Data from Neuchâtel Cantonal Bank
FInews reports: There was a cyber attack on the Neuchâtel Cantonal Bank (BCN) at the beginning of August, spokeswoman Marie-Laure Chapatte, told the «AWP» news agency (in German), resulting in the potential theft of around 1,500 email addresses. Neither the banking infrastructure – such as the online banking platform – nor other sensitive systems were affected by the…
DuPage Medical Group notifying 600,000 patients that their personal information may have been compromised in cyberattack
Lisa Schencker reports: DuPage Medical Group is notifying 600,000 patients that their personal information may have been compromised during a July cyberattack. DuPage Medical Group, which is the state’s largest independent physicians group, experienced a computer and phone outage that lasted nearly a week in mid-July. The group worked with cyber-forensic specialists to investigate the incident and…